Robert Falcone, Author at Unit42

14,077

people reacted

Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations

By Robert Falcone, Bryan Lee and Alex Hinchliffe
March 3, 2020 at 6:00 AM

28 min. read

18,804

people reacted

Actors Still Exploiting SharePoint Vulnerability to Attack Middle East Government Organizations

By Robert Falcone
February 3, 2020 at 6:00 AM

13 min. read

14,672

people reacted

xHunt Campaign: New Watering Hole Identified for Credential Harvesting

By Brittany Barbehenn and Robert Falcone
January 27, 2020 at 6:00 PM

7 min. read

16,901

people reacted

xHunt Campaign: xHunt Actor’s Cheat Sheet

By Robert Falcone
December 4, 2019 at 8:00 PM

19 min. read

25,746

people reacted

xHunt Campaign: New PowerShell Backdoor Blocked Through DNS Tunnel Detection

By Robert Falcone and Brittany Barbehenn
October 10, 2019 at 5:00 AM

11 min. read

42,382

people reacted

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

By Robert Falcone and Brittany Barbehenn
September 23, 2019 at 6:00 AM

22 min. read

42,464

people reacted

Emissary Panda Attacks Middle East Government SharePoint Servers

By Robert Falcone and Tom Lancaster
May 28, 2019 at 6:00 AM

13 min. read

48,512

people reacted

Behind the Scenes with OilRig

By Bryan Lee and Robert Falcone
April 30, 2019 at 6:00 AM

24 min. read

35,701

people reacted

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

By Robert Falcone and Brittany Barbehenn
April 17, 2019 at 12:01 AM

14 min. read

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

By Robert Falcone
April 16, 2019 at 9:00 AM

37 min. read

26,696

people reacted

New Python-Based Payload MechaFlounder Used by Chafer

By Robert Falcone and Brittany Barbehenn
March 4, 2019 at 6:00 AM

8 min. read

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

By Robert Falcone and Bryan Lee
January 18, 2019 at 10:40 AM

14 min. read

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

By Robert Falcone
December 19, 2018 at 9:00 AM

10 min. read

27,012

people reacted

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

By Robert Falcone
December 18, 2018 at 6:00 AM

10 min. read

Shamoon 3 Targets Oil and Gas Organization

By Robert Falcone
December 13, 2018 at 10:52 AM

6 min. read

Posts created by: Robert Falcone

Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations

Actors Still Exploiting SharePoint Vulnerability to Attack Middle East Government Organizations

xHunt Campaign: New Watering Hole Identified for Credential Harvesting

xHunt Campaign: xHunt Actor’s Cheat Sheet

xHunt Campaign: New PowerShell Backdoor Blocked Through DNS Tunnel Detection

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

Emissary Panda Attacks Middle East Government SharePoint Servers

Behind the Scenes with OilRig

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

New Python-Based Payload MechaFlounder Used by Chafer

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

Shamoon 3 Targets Oil and Gas Organization

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account